So, browsing away on Facebook the other week, then i wondered if Facebook was as riddled with holes like MySpace was a while back. It seems not...but still has a few ;)
Anyways, I don't need to explain to you the possibilities of what you can do with XSS and a social networking website so I'll just give you the vulnerability.
I heard Facebook were pretty swift with their patches, let's put that to the test...clock's ticking.
Fixed as of 05/11/07